Skip to main content

Prepared statements, form submission, form validation and displaying errors in php

PHP Code.

Insert statement Query.

INSERT INTO `users`(`user_id`, `user_first`, `user_last`, `user_email`, `user_uid`, `user_pwd`) VALUES (1,'Adnan','Zaib','text@.com','Admin',1234)

What are Prepared statements and how to use them

//Created a sql prepare template

$sql = "SELECT * FROM users WHERE user_uid=?;";

//than send to database with certain values left(unspecified parameters).

//Create a prepared statement

$stmt = mysqli_stmt_init($conn);

 

//prepare the prepared statement

if(!mysqli_stmt_prepare($stmt, $sql)){

echo "sql statement failed";

}else{

//bind values to parameters and further to placeholder

mysqli_stmt_bind_param(#stmt, "s",);

// ‘s’ stands for datatype of parameter that you are going to pass.

}

 

while($row = mysqli_fetch_assoc($result)){

echo $row['user_uid'] . "<br>";

}

PHP form Validation 

<?php

// define variables and set to empty values

$name = $email = $gender = $comment = $website = "";

if ($_SERVER["REQUEST_METHOD"] == "POST") {

  $name = test_input($_POST["name"]);

  $email = test_input($_POST["email"]);

  $website = test_input($_POST["website"]);

  $comment = test_input($_POST["comment"]);

  $gender = test_input($_POST["gender"]);

}

 

function test_input($data) {

  $data = trim($data);

  $data = stripslashes($data);

  $data = htmlspecialchars($data);

  return $data;

}

?>

//Note: Also check notebook for php validation code.

                        PHP form Validation

            Php form validation way 2 is below.



Validate name:

$name = test_input($_POST["name"]);
if (!preg_match("/^[a-zA-Z-' ]*$/",$name)) {
  $nameErr = "Only letters and white space allowed";
}

 

Validate Email:

$email = test_input($_POST["email"]);
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
  $emailErr = "Invalid email format";
}

 

Validate gender and comment:

if (empty($_POST["comment"])) {
    $comment = "";
  } else {
    $comment = test_input($_POST["comment"]);
  }

  if (empty($_POST["gender"])) {
    $genderErr = "Gender is required";
  } else {
    $gender = test_input($_POST["gender"]);
  }

Showing errors in the php form submitting.

How to write form for showing error. Define value attribute and echo input values with e.g:value = <?php echo htmlspecialcharacters($email) ?>

When you refresh or access the form page than you will get an error message on input fields which I will give solution later on.



Input faild values will show data after the form will submit, therefore its would show error So, how to remove these error? Solution is simple, you just need to define attribute ‘named’ variables with default empty string values. Look below the fist line of code.

 


$error[‘title’] = “title must be letters and spaces only”;

Write this line according to field name in every if condition than these error will be shown to user after submitting the form.

Video resource through netninjas

 

                        Checking for error

You can also save data to database after that redirect the user to other page.

 



 

 

Labels:

Comments

Post a Comment

Popular posts from this blog

Install MariaDB Latest Version 11.4 in Red Hat Version 9

 This this post i will show you step by step the installation process of mariaDB in red hat version 9. Step1 Run the command to pull the latest updated packages on applications installed in your system. -dnf update If you get Kernal update than reboot the system -reboot Step2 Go to official mariaDB site Make mariadb repository in /etc/yum.repos.d Place the configuration in this file # MariaDB 11.4 RedHatEnterpriseLinux repository list - created 2024-09-24 11:12 UTC # https://mariadb.org/download/ [mariadb] name = MariaDB # rpm.mariadb.org is a dynamic mirror if your preferred mirror goes offline. See https://mariadb.org/mirrorbits/ for details. # baseurl = https://rpm.mariadb.org/11.4/rhel/$releasever/$basearch baseurl = https://mirrors.aliyun.com/mariadb/yum/11.4/rhel/$releasever/$basearch # gpgkey = https://rpm.mariadb.org/RPM-GPG-KEY-MariaDB gpgkey = https://mirrors.aliyun.com/mariadb/yum/RPM-GPG-KEY-MariaDB gpgcheck = 1 Now install the mariaDB with its dependencies package...
Post a Comment
Read more

MySQL course to learn queries to manage DBMS.

1. Create Table CREATE TABLE statement allows you to create new table in database. The example code is given below.  create table profile( id int, name varchar(50), birth_date date, phone varchar(12), gender varchar(1) ); Code language: SQL (Structured Query Language) ( sql ) 2. Insert data in table INSERT INTO statement is use to insert new record/data into table. INSERT INTO profile (id, name, birth_date, phone, gender) VALUES (2, "Zaib", "1996-03-15", "9238975404", "M"); Code language: SQL (Structured Query Language) ( sql ) 3. Insert multiple records at-once INSERT INTO state is use to insert multiple new record/data into table. INSERT INTO profile (id, name, birth_date, phone, gender) VALUES (1, "Usamn ali", "1990-08-26", "9238785094", "M", 18, "Karachi"), (2, "Aisha", "1997-06-12", "9238974468", "F", 19, "Lahore"), ...
Post a Comment
Read more

Send email in php "without less secure" restriction

 => https://www.youtube.com/watch?v=Kjn5vBbBsi8 (less secure link) https://www.youtube.com/watch?v=dNTZ8X9Xk_Q&t=259s https://www.thapatechnical.com/2020/03/how-to-send-mail-from-localhost-xampp.html LARAVEL env file setup for gmail configuration MAIL_DRIVER=smtp MAIL_HOST=smtp.gmail.com MAIL_PORT=465 MAIL_USERNAME=exampleEmail@gmail.com MAIL_PASSWORD=yourAppPassword MAIL_ENCRYPTION=ssl MAIL_FROM_ADDRESS=exampleEmail@gmail.com MAIL_FROM_NAME="Adnan Zaib" Note: for TLS use Port : 587 for SSL use Port : 465
Post a Comment
Read more